Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/00d00b-235f-46c7-8830-c89b4dc79b2a/1/px_Hn3FlkUjEZsJ5ae1KeVyEdkY.roa
File: px_Hn3FlkUjEZsJ5ae1KeVyEdkY.roa (raw, json)
Hash identifier: kfY8pIcngM9s6Hz/kvDtBNn8EbFKFyWaeF1+9oxKjLw=
Subject key identifier: A7:1F:C7:9F:71:65:91:48:C4:66:C2:79:69:ED:4A:79:5C:84:76:46
Certificate issuer: /CN=ecc947955e37c3240713a06367b0cb4e6f38b1f3
Certificate serial: 0208284A
Authority key identifier: EC:C9:47:95:5E:37:C3:24:07:13:A0:63:67:B0:CB:4E:6F:38:B1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7MlHlV43wyQHE6BjZ7DLTm84sfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/00d00b-235f-46c7-8830-c89b4dc79b2a/1/px_Hn3FlkUjEZsJ5ae1KeVyEdkY.roa
Signing time: Sat 01 Jan 2022 07:57:18 +0000
ROA not before: Sat 01 Jan 2022 07:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 85.235.72.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34089034 (0x208284a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecc947955e37c3240713a06367b0cb4e6f38b1f3
Validity
Not Before: Jan 1 07:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a71fc79f71659148c466c27969ed4a795c847646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:54:2d:c5:90:3c:8e:c8:50:de:1a:3f:56:
b2:c5:11:9c:15:ac:69:b8:bc:7c:ce:3f:23:13:6b:
12:a8:f6:7e:70:33:e3:5e:29:a3:2d:40:01:db:92:
1b:f0:51:d1:57:8c:96:c0:ca:10:91:75:d0:df:9c:
10:3a:6f:ae:06:ac:17:4f:75:02:58:3a:37:28:52:
23:df:35:27:3d:70:eb:74:dd:ca:84:08:73:67:9c:
24:72:a9:70:9e:b2:91:ba:60:aa:22:d8:3a:55:9f:
9b:4f:42:cc:db:5d:4f:c6:60:5f:f2:d6:ed:7b:37:
9a:3e:9e:f6:b7:9d:a0:ce:91:a8:96:9f:83:2f:56:
6c:b3:fc:c0:14:0d:96:15:93:d3:4e:58:ae:20:db:
a4:74:14:67:1f:d3:1c:ae:e1:55:cd:fb:a9:0a:5d:
ac:83:96:1d:cc:5c:97:7a:da:4a:cc:4f:96:d7:8f:
f4:1f:7a:d5:e6:56:65:65:26:e8:0d:a4:48:ed:78:
72:87:c3:a8:03:1e:f6:78:91:ca:b3:e7:ca:19:38:
f8:a8:d0:51:af:ed:f7:0a:c6:8c:41:9d:86:20:ec:
08:f3:8a:ec:43:a8:f2:f9:df:25:7f:4c:02:8e:ba:
bb:22:9b:9d:9b:68:85:e1:e1:a1:a7:e5:a6:da:e6:
ed:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1F:C7:9F:71:65:91:48:C4:66:C2:79:69:ED:4A:79:5C:84:76:46
X509v3 Authority Key Identifier:
keyid:EC:C9:47:95:5E:37:C3:24:07:13:A0:63:67:B0:CB:4E:6F:38:B1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7MlHlV43wyQHE6BjZ7DLTm84sfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/00d00b-235f-46c7-8830-c89b4dc79b2a/1/px_Hn3FlkUjEZsJ5ae1KeVyEdkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/00d00b-235f-46c7-8830-c89b4dc79b2a/1/7MlHlV43wyQHE6BjZ7DLTm84sfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.72.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:8d:de:7e:0e:a9:2b:95:db:1c:65:46:38:30:d5:18:01:1a:
05:e3:39:fc:2a:23:ab:6c:20:b5:2b:a3:d4:d6:4b:79:9d:d5:
d7:a9:c3:f4:53:fe:a7:f3:17:ab:92:79:a2:5f:99:a4:29:c5:
e6:ad:fa:f4:57:7d:80:98:b6:eb:6d:e7:4a:40:34:6b:32:1c:
8a:d4:b3:61:ac:09:89:71:22:0c:dc:29:94:ef:7a:bd:52:5e:
9c:81:8f:a1:2d:58:7e:82:b1:62:73:3c:33:46:cc:9c:20:4e:
f9:81:01:45:db:33:52:89:af:16:ab:42:ae:01:60:ad:09:5b:
15:fd:a9:de:fa:64:ef:ab:f7:4c:55:7f:4a:53:59:11:a5:90:
1a:e6:35:92:a1:3e:9c:62:91:18:ba:37:28:2e:b7:7d:55:7c:
b7:04:55:6a:1a:b5:e1:78:1e:7c:d7:c3:bb:8f:ce:2c:70:e3:
f4:db:1a:ab:e7:bf:e1:96:7b:a5:3e:8e:b1:72:1b:d2:34:3b:
7a:14:18:72:29:ac:2a:b0:9a:b3:62:b4:25:ae:dd:3e:03:63:
5f:8f:8b:62:ba:a8:07:4f:2a:1d:e0:6e:89:21:51:cd:55:14:
77:00:e5:9b:ed:14:ca:12:e0:cb:82:9d:59:44:81:f1:a2:14:
c1:78:68:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:26 2023 by rpki-client on console-ams.rpki-client.org